$ rpki-client -vvf rpki.apnic.net/member_repository/A91CC1EB/AC384AA6DD8211EB958D1C30C4F9AE02/U05nXomsmsMC9TCid1KM-Bo8UwY.mft File: U05nXomsmsMC9TCid1KM-Bo8UwY.mft (raw, json) Hash identifier: CMZh6R75mJhvXvkmIdJouNnDvsR7VM1Oq85CjRRo0Go= Subject key identifier: 83:B1:1B:24:68:EA:F8:1F:2C:B0:A2:4F:EF:33:55:D0:50:77:7C:5D Authority key identifier: 53:4E:67:5E:89:AC:9A:C3:02:F5:30:A2:77:52:8C:F8:1A:3C:53:06 Certificate issuer: /CN=A91CC1EB/serialNumber=534E675E89AC9AC302F530A277528CF81A3C5306 Certificate serial: 05F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U05nXomsmsMC9TCid1KM-Bo8UwY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CC1EB/AC384AA6DD8211EB958D1C30C4F9AE02/U05nXomsmsMC9TCid1KM-Bo8UwY.mft Manifest number: 05E4 Signing time: Sun 02 Nov 2025 23:03:26 +0000 Manifest this update: Sun 02 Nov 2025 23:03:25 +0000 Manifest next update: Sun 09 Nov 2025 23:03:25 +0000 Files and hashes: 1: U05nXomsmsMC9TCid1KM-Bo8UwY.crl (hash: bcKAHIW+tNvzNx8CYZ0+SvWGS0b6ksgY4u1nIeaKrUg=) 2: 5C0006B4E1B711EEA6D7F740C4F9AE02.roa (hash: 4jfL7SNWxDFOPvyEexB/Au04m937KqyBQLuHPsEG/BI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CC1EB/AC384AA6DD8211EB958D1C30C4F9AE02/U05nXomsmsMC9TCid1KM-Bo8UwY.crl rsync://rpki.apnic.net/member_repository/A91CC1EB/AC384AA6DD8211EB958D1C30C4F9AE02/U05nXomsmsMC9TCid1KM-Bo8UwY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U05nXomsmsMC9TCid1KM-Bo8UwY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 23:03:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1527 (0x5f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CC1EB, serialNumber=534E675E89AC9AC302F530A277528CF81A3C5306 Validity Not Before: Nov 2 23:03:25 2025 GMT Not After : Nov 9 23:03:25 2025 GMT Subject: CN=6907e33d-764a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:45:16:71:82:2f:ea:36:02:e4:78:64:ed:ad: 36:43:05:c7:23:83:21:95:91:99:e7:6a:60:9c:f5: be:06:bc:98:15:0b:a6:70:5d:0c:b5:d3:33:9b:14: 1b:61:e3:46:6c:b1:ef:2f:7c:df:34:4c:b1:f7:28: bf:d4:79:2a:ce:a5:1e:f9:7c:df:23:0c:af:a6:b7: f7:b5:e9:ac:f1:c1:e3:9a:74:21:c5:3f:de:fb:39: 46:9a:5a:70:61:c8:47:a9:49:d9:1c:51:31:1b:98: cb:aa:4c:87:f4:dc:74:46:e5:87:6b:fb:41:a5:4b: ce:13:bb:9e:a6:de:37:e8:71:87:67:36:c7:98:c7: db:85:bb:02:f0:d6:13:e6:4b:91:68:2d:da:27:76: 86:7b:a4:d6:fa:65:8d:b1:6b:ac:5e:d2:79:dd:43: ca:0b:ad:3c:8b:ea:08:39:f6:25:58:52:ad:f7:fe: 44:c6:dc:4f:3a:9f:9e:8b:63:48:79:80:39:57:81: 9c:3f:8f:b7:63:7f:51:af:69:15:e9:e3:be:35:15: 51:f1:e7:09:47:71:b0:82:df:77:00:79:c2:75:b8: 6e:bc:31:ad:ec:b0:de:86:d5:19:98:fa:de:f4:c9: 9d:89:ac:6a:e6:af:39:c8:6a:a2:44:92:6e:db:9e: c7:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:B1:1B:24:68:EA:F8:1F:2C:B0:A2:4F:EF:33:55:D0:50:77:7C:5D X509v3 Authority Key Identifier: keyid:53:4E:67:5E:89:AC:9A:C3:02:F5:30:A2:77:52:8C:F8:1A:3C:53:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CC1EB/AC384AA6DD8211EB958D1C30C4F9AE02/U05nXomsmsMC9TCid1KM-Bo8UwY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U05nXomsmsMC9TCid1KM-Bo8UwY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CC1EB/AC384AA6DD8211EB958D1C30C4F9AE02/U05nXomsmsMC9TCid1KM-Bo8UwY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:18:fd:23:9a:90:61:c1:45:a1:b3:fa:80:2a:b9:48:16:e7: 07:75:5e:bf:85:33:ea:39:cb:c5:fb:00:a9:cd:dd:b5:5f:0a: c8:12:cc:41:c8:e7:8d:f3:9e:d0:6c:47:d8:c5:eb:61:04:ba: 8f:20:14:7c:25:f7:02:4d:af:46:85:e2:bc:eb:f4:c8:fc:30: 13:e6:ca:73:05:36:52:26:eb:b6:3b:9b:e7:62:a4:a2:b2:3f: ae:e0:89:86:5c:96:7b:10:e4:f3:30:b2:9f:16:57:ed:ab:00: 42:a7:43:7d:30:5e:75:42:b2:00:af:ab:6d:51:fa:47:78:5b: 1a:fe:33:a9:2d:70:c2:37:0c:e0:84:62:27:be:d4:41:09:30: ab:2b:10:26:98:c4:ea:57:c8:99:2f:67:37:b9:13:52:12:46: 7f:f0:24:fb:87:37:64:25:36:db:e5:02:32:6a:ee:67:a2:eb: b9:d8:cd:dc:d3:1e:bb:1d:7a:3a:12:39:3f:da:a1:2c:2a:f2: 8c:e5:74:9d:13:6d:7e:ac:30:79:7c:9d:4d:4e:4a:31:4c:a8: 7b:96:c9:a2:56:11:c8:14:59:a0:84:c8:f1:5b:6b:34:13:e5: ad:f8:5d:11:94:39:21:2e:44:69:c8:1a:00:4c:ed:9f:a4:7c: 6f:bc:fe:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBfcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0MxRUIxMTAvBgNVBAUTKDUzNEU2NzVFODlBQzlBQzMwMkY1MzBBMjc3NTI4Q0Y4 MUEzQzUzMDYwHhcNMjUxMTAyMjMwMzI1WhcNMjUxMTA5MjMwMzI1WjAYMRYwFAYD VQQDEw02OTA3ZTMzZC03NjRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA60UWcYIv6jYC5Hhk7a02QwXHI4MhlZGZ52pgnPW+BryYFQumcF0MtdMzmxQb YeNGbLHvL3zfNEyx9yi/1HkqzqUe+XzfIwyvprf3tems8cHjmnQhxT/e+zlGmlpw YchHqUnZHFExG5jLqkyH9Nx0RuWHa/tBpUvOE7uept436HGHZzbHmMfbhbsC8NYT 5kuRaC3aJ3aGe6TW+mWNsWusXtJ53UPKC608i+oIOfYlWFKt9/5ExtxPOp+ei2NI eYA5V4GcP4+3Y39Rr2kV6eO+NRVR8ecJR3Gwgt93AHnCdbhuvDGt7LDehtUZmPre 9Mmdiaxq5q85yGqiRJJu257H/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIOxGyRo 6vgfLLCiT+8zVdBQd3xdMB8GA1UdIwQYMBaAFFNOZ16JrJrDAvUwondSjPgaPFMG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQzFFQi9BQzM4NEFBNkRE ODIxMUVCOTU4RDFDMzBDNEY5QUUwMi9VMDVuWG9tc21zTUM5VENpZDFLTS1CbzhV d1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UwNW5Yb21zbXNNQzlUQ2lkMUtNLUJvOFV3WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QzFFQi9BQzM4NEFBNkREODIxMUVCOTU4RDFDMzBDNEY5QUUwMi9VMDVuWG9tc21z TUM5VENpZDFLTS1CbzhVd1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChGP0jmpBhwUWhs/qAKrlIFucHdV6/hTPqOcvF+wCpzd21XwrIEsxB yOeN857QbEfYxethBLqPIBR8JfcCTa9GheK86/TI/DAT5spzBTZSJuu2O5vnYqSi sj+u4ImGXJZ7EOTzMLKfFlftqwBCp0N9MF51QrIAr6ttUfpHeFsa/jOpLXDCNwzg hGInvtRBCTCrKxAmmMTqV8iZL2c3uRNSEkZ/8CT7hzdkJTbb5QIyau5nouu52M3c 0x67HXo6Ejk/2qEsKvKM5XSdE21+rDB5fJ1NTkoxTKh7lsmiVhHIFFmghMjxW2s0 E+Wt+F0RlDkhLkRpyBoATO2fpHxvvP5I -----END CERTIFICATE-----Generated at Tue Nov 4 02:18:51 2025 by rpki-client